| CVE-2014-0808 |
critical |
9.1 |
9.1 |
13y ago |
EC-CUBE vulnerable to authorization bypass |
|
| CVE-2011-0451 |
medium |
— |
4.3 |
16y ago |
EC-CUBE XSS Vulnerabilities |
|
| CVE-2022-38975 |
unknown |
— |
— |
4y ago |
EC-CUBE DOM-based cross-site scripting vulnerability |
|
| CVE-2022-40199 |
unknown |
— |
— |
4y ago |
EC-CUBE Directory traversal vulnerability |
|
| CVE-2021-20842 |
unknown |
— |
— |
4y ago |
EC-CUBE Cross-site request forgery (CSRF) vulnerability |
|
| CVE-2021-20751 |
unknown |
— |
— |
4y ago |
EC-CUBE Cross-site scripting vulnerability |
|
| CVE-2021-20750 |
unknown |
— |
— |
4y ago |
EC-CUBE Cross-site scripting vulnerability |
|
| CVE-2021-20717 |
unknown |
— |
— |
4y ago |
EC-CUBE Cross-site scripting vulnerability |
|
| CVE-2020-5679 |
unknown |
— |
— |
4y ago |
EC-CUBE Improper Restriction of Rendered UI Layers or Frames |
|
| CVE-2020-5680 |
unknown |
— |
— |
4y ago |
EC-CUBE Improper input validation vulnerability |
|
| CVE-2020-5590 |
unknown |
— |
— |
4y ago |
EC-CUBE Directory traversal vulnerability |
|
| CVE-2018-16191 |
unknown |
— |
— |
4y ago |
EC-CUBE Open redirect vulnerability |
|
| CVE-2022-25355 |
unknown |
— |
— |
4y ago |
EC-CUBE improperly handles HTTP Host header values |
|
| CVE-2021-20841 |
unknown |
— |
— |
5y ago |
EC-CUBE Improper access control in Management screen |
|